Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/7d6a1636-1758-4bbd-ae81-3a7107d9a845/0/34352e38392e3134382e302f32332d3234203d3e20333939303733.roa
File: 34352e38392e3134382e302f32332d3234203d3e20333939303733.roa (raw, json)
Hash identifier: 6KIkDDGEaYSyObON58swKqtq4mGZIVRymKlO9lAZmag=
Subject key identifier: 40:A0:C6:8B:AA:E2:CE:45:E3:FF:F5:7D:5D:93:BD:22:BA:19:A0:0E
Certificate issuer: /CN=bcd46dba34fe6620d72d9e7f576ef7a88a6c961a
Certificate serial: 41A47944757F3364071FEF42C395A274505599F9
Authority key identifier: BC:D4:6D:BA:34:FE:66:20:D7:2D:9E:7F:57:6E:F7:A8:8A:6C:96:1A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vNRtujT-ZiDXLZ5_V273qIpslho.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/7d6a1636-1758-4bbd-ae81-3a7107d9a845/0/34352e38392e3134382e302f32332d3234203d3e20333939303733.roa
Signing time: Tue 29 Aug 2023 14:06:36 +0000
ROA not before: Tue 29 Aug 2023 14:01:36 +0000
ROA not after: Tue 27 Aug 2024 14:06:36 +0000
asID: 399073
IP address blocks: 45.89.148.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
41:a4:79:44:75:7f:33:64:07:1f:ef:42:c3:95:a2:74:50:55:99:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bcd46dba34fe6620d72d9e7f576ef7a88a6c961a
Validity
Not Before: Aug 29 14:01:36 2023 GMT
Not After : Aug 27 14:06:36 2024 GMT
Subject: CN=40A0C68BAAE2CE45E3FFF57D5D93BD22BA19A00E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:1c:12:d8:f7:3c:d7:3c:b9:fe:0c:96:5c:22:
93:f3:f0:6f:04:70:61:78:ef:af:ef:a9:43:b3:e0:
5c:ad:85:de:8d:76:95:8e:ff:ba:fe:8f:39:7f:5a:
59:8d:76:8c:88:a7:a0:78:a3:20:20:e4:5b:eb:80:
19:1b:e3:19:d8:40:78:73:5e:d8:40:0d:f6:5d:2e:
58:a4:bf:57:ea:21:27:4d:6d:f2:5c:05:3c:7d:42:
81:5b:a0:13:22:ea:66:77:28:e6:f7:6e:11:cb:92:
83:6a:79:45:34:be:36:99:a4:82:2f:94:82:cf:6a:
2d:3e:eb:04:80:91:07:74:32:45:0b:fe:a1:bc:dd:
39:a1:e0:f3:39:ec:32:09:41:ed:6a:ac:d1:ba:40:
54:8b:ff:20:54:c4:e8:fa:e5:1a:16:19:c1:f9:fd:
ac:0a:f6:2d:f6:c7:d5:a9:4a:14:7a:71:4e:33:3a:
79:e1:59:65:bd:81:43:ef:b9:1b:b4:37:20:44:aa:
7e:bd:70:0f:cc:91:ce:ba:9d:5a:7d:eb:92:9c:a3:
85:b5:16:23:38:09:1b:ba:ff:e5:3e:20:86:8f:b4:
7c:d7:f2:ec:45:0f:03:db:ec:35:3e:3d:18:a6:f1:
61:14:49:da:ea:e6:42:98:8c:5a:56:cd:5b:5b:62:
d4:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:A0:C6:8B:AA:E2:CE:45:E3:FF:F5:7D:5D:93:BD:22:BA:19:A0:0E
X509v3 Authority Key Identifier:
keyid:BC:D4:6D:BA:34:FE:66:20:D7:2D:9E:7F:57:6E:F7:A8:8A:6C:96:1A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/7d6a1636-1758-4bbd-ae81-3a7107d9a845/0/BCD46DBA34FE6620D72D9E7F576EF7A88A6C961A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vNRtujT-ZiDXLZ5_V273qIpslho.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/7d6a1636-1758-4bbd-ae81-3a7107d9a845/0/34352e38392e3134382e302f32332d3234203d3e20333939303733.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.89.148.0/23
Signature Algorithm: sha256WithRSAEncryption
16:04:4b:9f:2a:59:d4:0d:0c:e7:71:af:3d:57:30:48:c1:31:
17:ca:90:41:f5:56:94:f2:d7:02:9b:6a:17:d5:a7:24:c7:00:
93:dd:c1:ff:ec:cf:ab:21:c8:2a:65:58:cd:b3:45:d5:5c:d7:
38:17:85:79:2d:9c:a2:91:7c:25:b8:13:4b:aa:a9:8e:c8:2e:
51:cc:fc:47:80:fd:6b:62:76:14:ee:9f:0f:7d:87:32:9b:ba:
b3:87:74:cf:e1:95:6f:c9:18:d9:44:74:e3:93:27:c0:fe:6a:
03:ee:c5:d9:9d:41:2b:c7:7a:a5:28:f6:e8:1a:59:2e:f1:95:
1e:3c:e8:53:29:93:38:3a:e2:84:6b:83:4e:9a:77:35:34:aa:
8a:33:46:29:da:38:a9:e8:61:5d:bb:0f:a8:54:09:b4:39:b5:
f4:8c:b1:7c:58:f2:01:2a:72:e2:05:99:46:88:02:9f:fc:fb:
6f:3b:51:72:5f:ea:34:44:f4:09:37:37:49:8c:f3:a8:e3:30:
11:82:fa:d0:7d:9f:69:a6:7c:34:8b:68:01:d6:ad:c7:07:63:
6a:00:b4:b4:32:68:4e:7c:c4:08:3d:3e:fc:3b:b2:c8:c3:fa:
cd:b1:87:99:34:91:35:f5:e9:6f:2c:26:4e:ad:df:d2:a5:84:
50:57:c7:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:19:29 2025 by rpki-client